Firepower Threat Defense Security Vulnerabilities and Issues — Firepower Threat Defense CVE List

Lucene search

CiscoFirepower Threat Defense

21 matches found

CVE•added 2024/11/15 4:15 p.m.•7163 views

CVE-2022-20685

A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit thi...

7.5CVSS7.7AI score0.00414EPSS

CVE•added 2024/04/24 7:15 p.m.•455 views

CVE-2024-20359

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary code...

6CVSS7.3AI score0.00141EPSS

CVE•added 2024/04/24 7:15 p.m.•413 views

CVE-2024-20353

A vulnerability in the management and VPN web servers for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. ...

8.6CVSS8.4AI score0.13803EPSS

CVE•added 2024/10/23 6:15 p.m.•71 views

CVE-2024-20412

A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100, 3100, and 4200 Series could allow an unauthenticated, local attacker to access an affected system using static credentials. This vulnerability is due to the presence of static accounts with hard-coded p...

9.3CVSS9AI score0.00048EPSS

CVE•added 2024/05/22 5:16 p.m.•67 views

CVE-2024-20355

A vulnerability in the implementation of SAML 2.0 single sign-on (SSO) for remote access VPN services in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to successfully establish a VPN session on an aff...

5CVSS6.8AI score0.0081EPSS

CVE•added 2024/05/22 5:16 p.m.•65 views

CVE-2024-20293

A vulnerability in the activation of an access control list (ACL) on Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the protection that is offered by a configured ACL on an affected device....

5.8CVSS6.9AI score0.00089EPSS

CVE•added 2024/10/23 6:15 p.m.•63 views

CVE-2024-20402

A vulnerability in the SSL VPN feature for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vu...

8.6CVSS8.5AI score0.00312EPSS

CVE•added 2024/10/23 6:15 p.m.•57 views

CVE-2024-20495

A vulnerability in the Remote Access VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition on an a...

8.6CVSS8.5AI score0.00105EPSS

CVE•added 2024/05/22 5:16 p.m.•56 views

CVE-2024-20261

A vulnerability in the file policy feature that is used to inspect encrypted archive files of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured file policy to block an encrypted archive file. This vulnerability exists because of a l...

5.8CVSS6.9AI score0.00192EPSS

CVE•added 2024/05/22 5:16 p.m.•53 views

CVE-2024-20363

Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System (IPS) rule engine that could allow an unauthenticated, remote attacker to bypass the configured rules on an affected system. This vulnerability is due to incorrect HTTP packet handling. An attacker coul...

5.8CVSS6.8AI score0.00143EPSS

CVE•added 2024/10/23 5:15 p.m.•51 views

CVE-2024-20268

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an unexpected reload of the device. This vulnerability is due to insu...

7.7CVSS7.4AI score0.00354EPSS

CVE•added 2024/10/23 5:15 p.m.•44 views

CVE-2024-20297

A vulnerability in the AnyConnect firewall for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should have been denied to flow t...

5.8CVSS5.8AI score0.00075EPSS

CVE•added 2024/10/23 5:15 p.m.•43 views

CVE-2024-20299

5.8CVSS5.8AI score0.00075EPSS

CVE•added 2024/10/23 6:15 p.m.•41 views

CVE-2024-20494

A vulnerability in the TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. T...

8.6CVSS8.5AI score0.00139EPSS

CVE•added 2024/10/23 6:15 p.m.•38 views

CVE-2024-20388

A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to determine valid user names on an affected device. This vulnerability is due to improper authentication of password update responses. An attacker coul...

5.3CVSS5.6AI score0.00112EPSS

CVE•added 2024/10/23 6:15 p.m.•38 views

CVE-2024-20431

A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control policy. This vulnerability is due to improper assignment of geolocation data. An attacker could exploit this vulnera...

5.8CVSS5.8AI score0.00068EPSS

CVE•added 2024/10/23 6:15 p.m.•36 views

CVE-2024-20382

A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a browser that is accessing an affected...

6.1CVSS6AI score0.00061EPSS

CVE•added 2024/10/23 6:15 p.m.•36 views

CVE-2024-20407

A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are no...

5.8CVSS5.7AI score0.0011EPSS

CVE•added 2024/10/23 6:15 p.m.•36 views

CVE-2024-20408

A vulnerability in the Dynamic Access Policies (DAP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause an affected device to reload unexpectedly. To exploit this vulnerability, an atta...

7.7CVSS7.4AI score0.0008EPSS

CVE•added 2024/10/23 6:15 p.m.•33 views

CVE-2024-20384

A vulnerability in the Network Service Group (NSG) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured access control list (ACL) and allow traffic that should be denied t...

5.8CVSS5.8AI score0.00101EPSS

CVE•added 2024/10/23 5:15 p.m.•32 views

CVE-2024-20330

A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause memory corruption, which could cause the Snort detection engine to restart une...

8.6CVSS8.6AI score0.00077EPSS